This page explains the configuration options for the following two service components:
Properties file section: Keygen
This table describes the properties responsible for configuring the Keygen in the Enterprise Server properties file:
| Property | Description |
|---|---|
keygen.algo optional |
The key algorithm for new keys. Used as a default for --gen-private-keys and key generation/rotation APIs.Options: rsa2048, rsa3072, rsa4096, curve25519Default value: curve25519Example: rsa2048
|
keygen.key.pair.expiration.days |
The validity period of the newly generated key pair in days. Used as the default for --gen-private-keys and key generation/rotation APIs. Setting the value to 0 is interpreted as no expiration.Example: 365
|
keygen.rotation.set.superseded.key.pair.expiration.days |
The number of days during which the existing key pair should remain valid following the manual or automatic rotation. If the original key pair expires earlier than the days set, its validity period is left unchanged. Example: 60
|